Science and Development Network (SciDev.Net)
In these days, many organizations try to manage their information system in safe way (i.e., evaluation, assurance and certification of information security) due to more rapidly change in information security system (i.e., Operational System). The CC (Common Criteria) is scheme to secure evaluation for information security solution. And the CC was approved by ISO/IEC 15408 in June, 1999 as international standard for information security system evaluation. The UK established C-TAS (CESG Tailored Assurance Service) that evaluate to IT product and software and operational system. The Japan developed ISO/IEC19791 for information security operating system security evaluation. Thus, the authors are preparing Operating System evaluation. This paper is to propose evaluation model related with operating system evaluation to be enforced in the future.